$ rpki-client -vvf rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft File: 99ZBYbOgStTlnAFz47gHWSgtQ8E.mft (raw, json) Hash identifier: dI3tFuDvAx3SAwUH1ec6p86kN9yn8woecgaHgRwbc74= Subject key identifier: CB:21:00:B0:E8:CA:8E:BE:58:E5:E6:6F:38:78:55:E6:C4:62:A7:D4 Authority key identifier: F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 Certificate issuer: /CN=A919C7A9/serialNumber=F7D64161B3A04AD4E59C0173E3B80759282D43C1 Certificate serial: 61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft Manifest number: 60 Signing time: Sun 19 May 2024 07:39:07 +0000 Manifest this update: Sun 19 May 2024 07:39:05 +0000 Manifest next update: Sun 26 May 2024 07:39:05 +0000 Files and hashes: 1: 99ZBYbOgStTlnAFz47gHWSgtQ8E.crl (hash: 6suPW6QFVnYlC8Dggrok2YkNvVEMg8wkUqE1IpNyy5w=) 2: 4C4696DA81E411EE81225F0CC4F9AE02.roa (hash: 8oqKPxsJ8flrsUCBVZTJg3zqyS0MhiEN7QDcKmvTsjg=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919C7A9/serialNumber=F7D64161B3A04AD4E59C0173E3B80759282D43C1 Validity Not Before: May 19 07:39:05 2024 GMT Not After : May 26 07:39:05 2024 GMT Subject: CN=6649ac9a-588f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e1:e6:94:2e:f8:4f:c1:90:3e:ff:98:9c:c4: 71:d9:59:dd:12:36:49:0f:d9:f0:9a:19:8e:92:38: 05:cb:7c:cc:35:21:da:ab:71:ad:cf:4c:0b:6a:6e: 77:33:9c:7c:f4:21:68:f4:33:ef:79:cd:a0:f3:81: 13:4c:ee:c7:f7:e2:da:00:56:73:78:85:ba:e5:d9: fa:0b:48:08:4c:e1:3c:c5:39:e0:fb:36:8c:14:b4: 8b:f0:82:83:c8:e2:f8:04:f9:bd:34:e5:d0:6a:f5: 46:9b:2d:10:c4:d4:18:ae:a4:7b:da:cb:ec:fc:bb: 72:de:d1:52:11:34:55:d3:70:67:8f:6a:82:39:28: bf:ff:c8:90:c6:6d:d5:b7:31:e4:37:77:7b:3f:98: 23:df:5f:3c:59:3b:40:a5:17:7f:78:5b:3c:d4:3a: eb:14:70:a1:a9:a7:9c:15:d1:2b:e5:61:60:30:f9: bc:f3:ad:d7:ce:4b:d6:37:bf:a2:e4:c7:93:47:9d: 25:af:33:ef:1e:1e:9d:f4:4a:ed:32:66:a4:ff:f0: 66:49:90:8e:e7:6f:dd:fb:f3:20:b6:9f:67:d3:93: fd:54:f0:c1:12:06:af:26:22:99:94:fd:b0:d1:0b: 9d:10:c3:fc:b8:fc:9a:1c:6f:3a:6b:7f:61:9c:2e: 50:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:21:00:B0:E8:CA:8E:BE:58:E5:E6:6F:38:78:55:E6:C4:62:A7:D4 X509v3 Authority Key Identifier: keyid:F7:D6:41:61:B3:A0:4A:D4:E5:9C:01:73:E3:B8:07:59:28:2D:43:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/99ZBYbOgStTlnAFz47gHWSgtQ8E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919C7A9/AFA0E2A481E311EE838DA50AC4F9AE02/99ZBYbOgStTlnAFz47gHWSgtQ8E.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 14:6f:96:63:4f:a1:58:04:0e:07:d0:e6:a7:db:c3:71:2c:93: a1:13:da:01:1e:dc:8c:09:69:41:bd:fd:ea:2b:04:36:43:82: 38:8f:91:68:21:ff:0a:87:eb:af:d4:58:e0:a0:f9:77:58:f5: 0c:65:08:85:62:1f:77:af:61:77:f0:bc:c2:c2:bb:86:41:d5: 9a:2c:b3:be:3f:df:32:b3:61:ce:87:13:33:8a:04:2d:5c:b7: 46:15:ac:c0:fe:7e:24:ae:ad:ed:c3:6a:ff:8a:49:8a:01:d3: c2:7b:86:69:f0:54:0a:5b:d3:8b:df:6e:2b:90:a2:7c:df:9b: 01:d3:23:72:77:b4:7d:3b:a4:1e:ab:0e:4b:f7:b9:ee:e1:8b: ef:58:78:cb:d6:9f:39:bb:5e:b0:b0:88:48:4d:a3:b3:5d:6d: b9:b3:1e:d5:f4:ec:58:9e:3d:35:74:94:2f:75:b2:45:a8:a6: 80:b0:51:0b:b9:7a:74:0b:4a:f0:79:c7:f7:d8:11:b6:17:26: 88:3f:13:48:34:e7:c7:7b:c2:47:46:a0:d8:46:2b:7a:c9:c4: d2:90:64:2c:e0:7b:14:09:a5:8c:45:de:e6:b5:bf:f2:8c:cf: ae:2d:2d:67:e7:e6:de:f9:15:90:c6:ab:ad:1b:b1:3b:fe:4f: 2b:be:af:1f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QzdBOTExMC8GA1UEBRMoRjdENjQxNjFCM0EwNEFENEU1OUMwMTczRTNCODA3NTky ODJENDNDMTAeFw0yNDA1MTkwNzM5MDVaFw0yNDA1MjYwNzM5MDVaMBgxFjAUBgNV BAMTDTY2NDlhYzlhLTU4OGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN4eaULvhPwZA+/5icxHHZWd0SNkkP2fCaGY6SOAXLfMw1Idqrca3PTAtqbncz nHz0IWj0M+95zaDzgRNM7sf34toAVnN4hbrl2foLSAhM4TzFOeD7NowUtIvwgoPI 4vgE+b005dBq9UabLRDE1BiupHvay+z8u3Le0VIRNFXTcGePaoI5KL//yJDGbdW3 MeQ3d3s/mCPfXzxZO0ClF394WzzUOusUcKGpp5wV0SvlYWAw+bzzrdfOS9Y3v6Lk x5NHnSWvM+8eHp30Su0yZqT/8GZJkI7nb9378yC2n2fTk/1U8MESBq8mIpmU/bDR C50Qw/y4/Jocbzprf2GcLlCTAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUyyEAsOjK jr5Y5eZvOHhV5sRip9QwHwYDVR0jBBgwFoAU99ZBYbOgStTlnAFz47gHWSgtQ8Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlDN0E5L0FGQTBFMkE0ODFF MzExRUU4MzhEQTUwQUM0RjlBRTAyLzk5WkJZYk9nU3RUbG5BRno0N2dIV1NndFE4 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOTlaQlliT2dTdFRsbkFGejQ3Z0hXU2d0UThFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlD N0E5L0FGQTBFMkE0ODFFMzExRUU4MzhEQTUwQUM0RjlBRTAyLzk5WkJZYk9nU3RU bG5BRno0N2dIV1NndFE4RS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBABRvlmNPoVgEDgfQ5qfbw3Esk6ET2gEe3IwJaUG9/eorBDZDgjiPkWgh /wqH66/UWOCg+XdY9QxlCIViH3evYXfwvMLCu4ZB1Zoss74/3zKzYc6HEzOKBC1c t0YVrMD+fiSure3Dav+KSYoB08J7hmnwVApb04vfbiuQonzfmwHTI3J3tH07pB6r Dkv3ue7hi+9YeMvWnzm7XrCwiEhNo7NdbbmzHtX07FiePTV0lC91skWopoCwUQu5 enQLSvB5x/fYEbYXJog/E0g058d7wkdGoNhGK3rJxNKQZCzgexQJpYxF3ua1v/KM z64tLWfn5t75FZDGq60bsTv+Tyu+rx8= -----END CERTIFICATE-----Generated at Sun May 19 08:25:05 2024 by rpki-client on console-ams.rpki-client.org